Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security access manager for web software vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3073
Unspecified vulnerability in IBM Security Access Manager (ISAM) for Mobile 8.0 and IBM Security Access Manager for Web 7.0 and 8.0 allows remote malicious users to execute arbitrary code via unknown vectors.
Ibm Security Access Manager For Mobile Software 8.0
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Software 7.0
Ibm Security Access Manager For Web Appliance 7.0
Ibm Security Access Manager For Web Software 8.0
Ibm Security Access Manager For Mobile Appliance 8.0
NA
CVE-2014-0963
The Reverse Proxy feature in IBM Global Security Kit (aka GSKit) in IBM Security Access Manager (ISAM) for Web 7.0 prior to 7.0.0-ISS-SAM-IF0006 and 8.0 prior to 8.0.0.3-ISS-WGA-IF0002 allows remote malicious users to cause a denial of service (infinite loop) via crafted SSL mess...
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Software 8.0
Ibm Security Access Manager For Web Software 7.0
Ibm Security Access Manager For Web Appliance 7.0
1 Github repository
6.1
CVSSv3
CVE-2017-1489
IBM Security Access Manager 6.1, 7.0, 8.0, and 9.0 e-community configurations may be affected by a redirect vulnerability. ECSSO Master Authentication can redirect to a server not participating in an e-community domain. IBM X-Force ID: 128687.
Ibm Tivoli Access Manager For E-business 6.1.0.4
Ibm Tivoli Access Manager For E-business 6.1.0.6
Ibm Tivoli Access Manager For E-business 6.1.0.13
Ibm Tivoli Access Manager For E-business 6.1.0.15
Ibm Tivoli Access Manager For E-business 6.1.0.22
Ibm Tivoli Access Manager For E-business 6.1.0.24
Ibm Tivoli Access Manager For E-business 6.1.0.29
Ibm Tivoli Access Manager For E-business 6.1.0.31
Ibm Tivoli Access Manager For E-business 6.1.0
Ibm Tivoli Access Manager For E-business 6.1.0.1
Ibm Tivoli Access Manager For E-business 6.1.0.2
Ibm Tivoli Access Manager For E-business 6.1.0.3
Ibm Tivoli Access Manager For E-business 6.1.0.16
Ibm Tivoli Access Manager For E-business 6.1.0.17
Ibm Tivoli Access Manager For E-business 6.1.0.18
Ibm Tivoli Access Manager For E-business 6.1.0.19
Ibm Tivoli Access Manager For E-business 6.1.0.20
Ibm Tivoli Access Manager For E-business 6.1.0.8
Ibm Tivoli Access Manager For E-business 6.1.0.9
Ibm Tivoli Access Manager For E-business 6.1.0.10
Ibm Tivoli Access Manager For E-business 6.1.0.11
Ibm Tivoli Access Manager For E-business 6.1.0.25
NA
CVE-2014-3053
The Local Management Interface (LMI) in IBM Security Access Manager (ISAM) for Mobile 8.0 with firmware 8.0.0.0 up to and including 8.0.0.3 and IBM Security Access Manager for Web 7.0, and 8.0 with firmware 8.0.0.2 and 8.0.0.3, allows remote malicious users to bypass authenticati...
Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.2
Ibm Security Access Manager For Web 8.0 Firmware 8.0.0.3
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Appliance 7.0
Ibm Security Access Manager For Web Software 8.0
Ibm Security Access Manager For Mobile Appliance 8.0
Ibm Security Access Manager For Web Appliance 8.0
Ibm Security Access Manager For Web Software 7.0
Ibm Security Access Manager For Mobile Software 8.0
6.1
CVSSv3
CVE-2018-0223
A vulnerability in DesktopServlet in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based interface. The vulnerability is due to ...
Cisco Security Manager 4.9\\(0\\)qa99
6.1
CVSSv3
CVE-2023-20119
A vulnerability in the web-based management interface of Cisco AsyncOS Software for Cisco Secure Email and Web Manager, formerly known as Content Security Management Appliance (SMA) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) atta...
Cisco Secure Email Gateway 14.0.1-053
Cisco Web Security Appliance 14.0.1-053
Cisco Secure Email And Web Manager 14.0.1-053
Cisco Secure Email And Web Manager 15.0.0-256
Cisco Secure Email Gateway 15.0.0-256
Cisco Web Security Appliance 15.0.0-256
Cisco Secure Email And Web Manager 14.0.1-033
Cisco Secure Email Gateway 14.0.1-033
Cisco Web Security Appliance 14.0.1-033
Cisco Secure Email And Web Manager 14.0.0-418
Cisco Secure Email Gateway 14.0.0-418
Cisco Web Security Appliance 14.0.0-418
Cisco Secure Email And Web Manager 15.0.0-050
Cisco Secure Email Gateway 15.0.0-050
Cisco Web Security Appliance 15.0.0-050
6.1
CVSSv3
CVE-2022-20636
Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user...
Cisco Security Manager
6.1
CVSSv3
CVE-2022-20638
Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user...
Cisco Security Manager
6.1
CVSSv3
CVE-2022-20639
Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user...
Cisco Security Manager
6.1
CVSSv3
CVE-2022-20640
Multiple vulnerabilities in the web-based management interface of Cisco Security Manager could allow an unauthenticated, remote malicious user to conduct cross-site scripting attacks against a user of the interface. These vulnerabilities are due to insufficient validation of user...
Cisco Security Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »